OK - great.
1) Do you want to create a scurl template and reference it here and I can fill it out as agreed.
2) Where should the “Safe downloads” wiki entry/page go? Any suggestions?
3) Once the above are done & reviewed, I’ll go through all the main documentation on the main page and search/replace:
- all wget (change to scurl)
- NSA, GCHQ, intelligence agencies, agency etc (all changed to adversary/adversaries)
The only exception to the above is things like “NSA Key” which are explicitly referenced as existing in Windows etc, which there is no good way of avoiding.
4) I checked out core dump stuff. Yes, it’s a problem since all the refs show that it can leak encryption keys, passwords etc.
The problem is that Linux is also vulnerable. According to some info I found, apparently even Debian, Arch Linux etc. have some systemd default set to dump shit like this, unless systemd changes are made to some config file / setting somewhere.
It of course begs the question, should Whonix be changing that systemd setting to prevent any potential leaking of critical information in event of one of the (rare) crashes?
Apparently advanced adversaries can try to enforce a crash, just to get their hands on core dump / kernel dump etc information.
5) I’ll keep description=fields on my list, but as a low priority until finishing off Advanced Security Guide and some other key entries.
Agree it is important.
6) Renaming entries. Yes, I agree many need some work. It will become clearer after a ton more editing is finished, because then we will be ready to rework where everything belongs.
I’m gonna suggest some things later on definitely, and see what you think. Especially that “General Information” section on the main page, which needs major merging work & shifting further down the page.